Overview

overview

10

Static

static

10

2024-06-25...er.exe

windows7-x64

9

2024-06-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-25_1ca20fe29b4d1e47ac5c93ec79efa2a4_cryptolocker

  • Size

    392KB

  • Sample

    240625-nzmtkaxgpd

  • MD5

    1ca20fe29b4d1e47ac5c93ec79efa2a4

  • SHA1

    fdef210309bcb8439b8dd3c972d2b0dd0bed9094

  • SHA256

    a0304b6888ce6bfc78dfb17adf95ec4fe2dc03200feffb0a0c5a2e48001ce593

  • SHA512

    4e3cb7250e64b942802bc4476b33ab8b707b68cf21fc03c38441afcef530f964acd74ee7017d210d9f5a550ff43656a59f03023b57cd9d5cd7d3a0ab6cf51496

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRU:nnOflT/ZFIjBz3xjTxynGUOUhXRU

Score
10/10

Malware Config

Targets

    • Target

      2024-06-25_1ca20fe29b4d1e47ac5c93ec79efa2a4_cryptolocker

    • Size

      392KB

    • MD5

      1ca20fe29b4d1e47ac5c93ec79efa2a4

    • SHA1

      fdef210309bcb8439b8dd3c972d2b0dd0bed9094

    • SHA256

      a0304b6888ce6bfc78dfb17adf95ec4fe2dc03200feffb0a0c5a2e48001ce593

    • SHA512

      4e3cb7250e64b942802bc4476b33ab8b707b68cf21fc03c38441afcef530f964acd74ee7017d210d9f5a550ff43656a59f03023b57cd9d5cd7d3a0ab6cf51496

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRU:nnOflT/ZFIjBz3xjTxynGUOUhXRU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks